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Claim 1 (currently amended): A user authentication system, comprising: 
a data holding medium for holding a common key unique to a user, used in a common- 
key encryption method for authentica tion between the data holding medium held by the user and 
an authentication appar atus, and a private kev used in a public-key encryption method to the 
authentication between t he data holding medium and a server to perform a service to the use* 

wh e r e in tho data holding medium inoludos a radio function for sending information -f o ad 
from the data holding medium by radio, and writing information to tho data holding medium by 

saidaft authentication apparatus for holding the common key used in the common-key 
encryption method and a private key used in a public-key encryption method, each unique to the 
user, and 

an information processing apparatus connected to the authentication apparatus in an 
always-communicable maimer and provided with a function for performing authentication by 
the public-key encryption method; 

wherein the authentication apparatus performs authenticatio n, authenticating the data 
holding medium by using the common key used in common-kev encryption method for the user 
held by the data holding medium and tho common key h e ld by th e authentication apparatuo , in 
response to an **sef-authentication request sent from the information processing apparatus, and, 
only when the user has been authenticated, performs processing for making the information 
processing apparatus authenticate the user by using the private key corresponding to the user, 
wherein information encrypted by the public- key encryption method is sent from the information 
processing apparatus, forwarded to the auth entication apparatus, decrypted using the private kev 
corresponding to the user so as to obtain decrypted information: 

wherein the decrypted informat ion is encrypted means using the common kev: and 

wherein the obtained common k ey encrypted information is sent back to the data holding 
medium. 

Claim 2 (original): An authentication system as claimed in Claim 1, wherein the data 
holding medium is portable. 
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Claim 3 (original): An authentication system as claimed in Claim 1, wherein the 
information processing apparatus is a mobile communication apparatus. 

Claim 4 (original): An authentication system as claimed in Claim l f wherein the data 
holding medium and the information processing apparatus are integrated as a unit. 

Claim 5 (currently amended): A user authentication method for a user who carries a data 
holding apparatus for holding a common key unique to a user, u sed in a common-key encryption 
method for authenti cation of the data holding apparatus held by the user and an authentication 
apparatus for authenti cation between the data holding apparatus and a server to perform a service 
to the user , the method comprising the steps of: 

r e ading tho common ko y from th e data holding apparatua by radio; 

authenticating the data holding apparatus of the user by the common-key encryption 
method by using the common key held by the data holding apparatus of tho usor i n response to 
an ttser authentication reques t from the server : and 

performing, only when the user has been authenticated, processing for authenticating the 
user by a public-key encryption method. 

Claim 6 (original): A user authentication method as Claimed in Claim 5, wherein the 
data holding medium is portable. 

Claim 7 (original): A user authentication method as claimed in Claim 5, wherein the 
user authentication request is sent from an information processing apparatus. 

Claim 8 (original): A user authentication method as claimed in Claim 7, wherein the 
information processing apparatus and the data holding apparatus are integrated as a unit. 

Claim 9 (original); A user authentication method as claimed in Claim 7 7 wherein the 
information processing apparatus has a communication function. 
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Claim 10 (original): A user authentication method as claimed in Claim 5, wherein the 
data holding apparatus is an IC card. 

Claim 1 1 (original): A user authentication method as claimed in Claim 9, wherein the 
data holding apparatus is an IC card. 

Claim 12 (original): A user authentication method as claimed in Claim 1 1, wherein the 
information processing apparatus has a communication function, a browser function for 
accessing information on the Internet, and a reader and writer function for reading and writing 
the IC card 

Claim 1 3 (currently amended): An authentication method, comprising the steps of: 

holding a common key unique to a user u sed in a common-key encryption method for 
authen tication between a data holding apparatus held bv the user and an authentication apparatus, 
and a private key used in a public-key encryption metho d to the authentication between the dafo 
holding apparatus and a server to p erform a service to the for ooflh user; 

s e nding tho common key and the privat e k e y road from e ach uoor by radio; 

authenticating, in response to an met authentication request sent from an external 
information processing apparatus, the data holding apparatus reer by using the held common key 
le g tho uoor and a common koy u sed in the common-key encryption method for the user w&eh 
fe e us e r hoo and is h eld by the a data holding apparatus; and 

performing, only when the me t data holding ap paratus has been authenticated in the 
authentication step, processing for making the information processing apparatus authenticate the 
reef, data holding Apparatus by the public-key encryption method by using the private key 
corresponding to the user, wherein information e ncrypted bv the public-kev encryption method is 
sent from the server, forwarded to the aut hentication apparatus, decrypted bv an authentication 
device using the private key corresponding to the user so as to obtain decrypted information: 

wherein the decrypted information is encrypted means usin p the common kev: and 

wherein the obtain ed common key encrypted information is sent back to the data holding 
apparatus^ 



: ! PAGE 7/18 * RCVD AT 12/7/2005 3:51:04 PM [Eastern Standard Time] * SVR:USPTO-EFXRF-6/32 * DNIS:273«300 * CSID:312 372 4425 * DURATION (mm-ss):0644 



DEC 07 2005 20:55 FR BELL BOYD fr LLOYD 312 372 4425 TO 8651 15712738300 P 
Appl. No. 09/846,522 

Reply to Office Action of September 12, 2005 



Claim 14 (currently amended): An authentication apparatus, comprising: 
a holder for holding a common key unique to a user, used in a common-key encryption 
method for authenticat ion between a data holding medium held by the user and an authentication 
apparatus, and a private key used in a public-key encryption method, for oaoh to the 
authentication betwe en the data holding medium and a server to perform a service to the user: 

th e holdor for holding th e common l coy and tho private key inoluding a radio Amotion for 
s e nding information read from tho holder by radio, and writing information to th e hold e r by 
radio; and 

an authenticating device for, in response to aus e rg n authentication request sent from the 
sgryer^a n e xt e rnal information proo e asing apparatus, authenticating tho user authenticating the 
data holding medium by using the common key for tho user held by tho holder and a comm e e 
key-used in4he-_common-key encryption method for the user held by a^the data holding medium 
of tho user , and for, only when the data holding mediumi wer- has been authenticated, bv using 
the common keys, performing^ processing for making tho information proc e ssing apporatuo 
authenticate th e uoor by tho publio koy encryption mothod -authenticatine between the data 
holding medium and the server^by using the private key corresponding to the gseg ruser, wherein 
information encrypted by the public -kev encryption method is sent from the server, forwarded to 
the authentication apparatus, decr ypted bv the authentication device using the private kev 
corresponding to the user so as to obtain decrypted information; 

wherein the decrypted inf ormation is encrypted means usin g the common kev: and 
wherein the obtained comm on kev encrypted information is sent back to the data holding 
medium. 

Claim 15 (original): An authentication apparatus as claimed in Claim 14, wherein the 
authentication apparatus has a private key used in the public-key encryption method. 

Claim 16 (original); An authentication apparatus as claimed in Claim 14, wherein the 
data holding medium is an IC card. 
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Claim 17 (original): An authentication apparatus as claimed in Claim 16, wherein the 
infoimation processing apparatus has a reader and writer function for reading and writing the IC 
card. 

Claim 18 (original): An authentication apparatus as claimed in Claim 14, wherein the 
data holding medium is integrated with the information processing apparatus as a unit 

Claim 19 (original): An authentication apparatus as claimed in Claim 14, wherein the 
information processing apparatus is a mobile communication apparatus. 

Claim 20 (original): An authentication apparatus as claimed in Claim 19, wherein the 
information processing apparatus has a communication function, and a browser function for 
accessing information on the Internet. 
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Claim 21 (currently amended): A user authentication system, wherein a data holding 
medium for holding a common key unique to a user, used in a common key encryption method, 
comprising: 

a server for sending an authentication request to perform a service to the user; and 
an authentication apparatus comprising, 

a holding means for holding the common key used in a common-key encryption method 
1 for authentication between a data holding medium held by the user and the authentication 
apparatus, said holding means holding a private key used in a public-key encryption method to 
the authentication between the data holding medium and the server, 

the holding meana including a radio function for pending information road from th e 
holding moans by radio, and writing information to tho holding m e ano by radio; and 

means for authenticating the data holding medium by using the common key for tho usor 
hold by tho holding moans and a common key used in the-common-key encryption method for 
the user held by the data holding medium in response to the authentication request sent from the 
server, said authenticating means performing a processing for authentication between the data 
holding medium and the server by using the private key corresponding to the user when the data 
holding medium has been authenticated by using the common keys, wherein information 
encrypted b y the public-key encrypt i on method is sent from the server, forwarded to the 
authentication apparatus, decrypted b y the authentication device usin? the private key 
corresponding to the user so as to obtain decrypted information: 

wherein the decrypted infor mation is encrypted means using the common kev: and 

wherein the obtained common ke v encrypted information is sent back to the data holding 
medium. 
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Claim 22 (currently amended): An authentication method between a data holding 
medium and a server by an authentication apparatus, said data holding medium holding a 
common key unique to a user, used in a common-key encryption method, wherein said 
authentication apparatus holds the common key and a private key used in a public-key 
encryption method, the authentication method comprising the steps of: 

ponding the oommon key and tho private) Icoy from tho data holding modium to the 
authentication apparatus by radio and writing information rocoivod from tho authentication 
apparatus to th e data holding modium by radios 

authenticating, in response to an authentication request sent form the server to perform a 
service to the user, the data holding medium by using the common key for the user hold by tho 
authentication apparatua and a oommon koy used in the common-key encryption method for the 
userheld by the data holding mediun i_and for, only when the data holding medium has been 
authenticated, b v using the common kevs: and 

performing a processing for authentication between the data holding medium and the 
server by using the private key corresponding to the user when the data holding medium has 
been authenticated by using the common kev s, wherein information encrypted bv the public-kev 
encryption method is sent from the server, for w arded to the authentication apparatus, decrypted 
by , the authentication device using the priv a te kev corresponding to the user so as to obtain 
decrypted information: 

wherein the d ecrypted information is encrypted means using the common key; and 
wherein the obtained common kev encrypted information is sent back to the data holding 
medium. 
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Claim 23 (currently amended): An authentication apparatus, comprising: 
a holding means for holding a common ke y unique to a user, used in a common-key 
encryption method for authentication between a data holding medium held by the user and the 
authentication apparatus, said holding means holding a private key used in a public-key 
encryption method for authentication between the data holding medium and a serve r to perform a 
sendee to the user : 

th e data holding medium including a radio Amotion for sending information road -from th e 
data holding m e dium to tho authentication apparatus by radio, and writing information received 
from th e auth e ntication apparatus to tho data holding medium by radio; and 

means for authenticating the data holding medium by using the common key for tho uoor 
hold by tho holding moans and a common koy u sed in &e common-key encryption method for 
the user held by the data holding mediu m, and for, only when the data holding medium has been 
authenticated, bv using the common keys, in response to the authentication request sent from the 
server, said authenticating means performing a processing for authentication between the data 
holding medium and the server by using the private key corresponding to the user when the data 
holding medium has been authenticated by using the common key s, wherein information 
e ncrypted by the public-key encryption method is sent from the server, forwarded to the 
authentication apparatus, decrypted by the authentication device using the private kev 
correspondi ng to the user so as to obtain decrypted information; 

wherein the decrypted information i s encrypted means using the common kev: and 

wherein the obtained common key encrypted information is sent back to the data holding 
medium. 
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